Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uLRz022lJgglzQu_YvbsGQ00Ahg.cer
File: uLRz022lJgglzQu_YvbsGQ00Ahg.cer (raw, json)
Hash identifier: 8TER8cDCjc/b5PmsyZ0rahx/cONiEsmM7IcMMR/bY0A=
Subject key identifier: B8:B4:73:D3:6D:A5:26:08:25:CD:0B:BF:62:F6:EC:19:0D:34:02:18
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01E38A
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91C5D81/47059DD81D6E11E29B76AAAF08B02CD2/uLRz022lJgglzQu_YvbsGQ00Ahg.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91C5D81/47059DD81D6E11E29B76AAAF08B02CD2/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 08 Mar 2024 14:18:52 +0000
Certificate not after: Thu 01 May 2025 00:00:00 +0000
Subordinate resources: AS: 45630
IP: 103.38.60.0/22
IP: 203.201.184.0/22
IP: 2401:880::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 21 Feb 2025 05:15:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 123786 (0x1e38a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Mar 8 14:18:52 2024 GMT
Not After : May 1 00:00:00 2025 GMT
Subject: CN=A91C5D81
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:7c:a2:4b:0f:7b:ed:06:71:1a:2d:c9:15:3f:
68:e6:11:8c:9c:03:70:d3:b9:ad:0f:8c:9b:94:71:
92:89:23:3f:5c:3d:99:d0:e4:f1:bb:7d:91:19:62:
2a:c8:7d:df:30:9e:d9:47:01:1a:4b:21:a9:02:46:
ab:19:7e:81:a2:ab:75:43:da:36:ab:c4:a8:0a:b8:
03:e7:cb:ee:08:c3:6e:5f:97:6e:3d:70:c4:d8:dd:
6e:40:b4:d8:a1:c2:2e:91:e4:f0:43:2b:33:f1:36:
df:ce:b3:bf:93:49:25:f9:31:15:a3:15:df:eb:bc:
2e:ea:1e:83:8a:26:c7:33:3b:7d:e2:29:8a:85:4a:
cd:fe:65:8c:04:f8:96:a9:c3:6e:28:d4:f0:90:cc:
bf:f6:09:60:ab:76:8c:4d:54:f6:e3:8b:20:94:2a:
d1:8b:36:27:02:ea:d2:ea:dc:75:b6:aa:1d:fa:aa:
48:83:c2:43:ff:72:72:cc:b8:ef:6d:69:fd:ef:3f:
a1:c8:16:be:11:b1:49:83:cc:e9:84:3f:08:68:6f:
64:36:f8:86:d6:e2:e3:65:a7:c8:38:5e:41:eb:68:
48:a0:b7:aa:57:b2:38:74:91:5e:ab:2b:14:a5:ff:
c6:27:4c:6d:20:36:c8:53:85:04:6a:5d:59:c7:f4:
bb:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:B4:73:D3:6D:A5:26:08:25:CD:0B:BF:62:F6:EC:19:0D:34:02:18
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91C5D81/47059DD81D6E11E29B76AAAF08B02CD2/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91C5D81/47059DD81D6E11E29B76AAAF08B02CD2/uLRz022lJgglzQu_YvbsGQ00Ahg.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
45630
sbgp-ipAddrBlock: critical
IPv4:
103.38.60.0/22
203.201.184.0/22
IPv6:
2401:880::/32
Signature Algorithm: sha256WithRSAEncryption
25:ce:2e:a9:48:33:da:7a:5c:4a:3b:72:01:86:ae:42:f3:ed:
cf:2f:91:f2:f6:fe:08:7f:6c:29:7c:cc:ac:03:d9:b6:97:57:
bd:5c:4c:8d:ca:6f:f2:73:0c:5a:b3:e8:b4:c2:a5:39:c5:b6:
9b:64:e1:7f:37:8d:6b:bf:17:72:c3:c4:de:68:fc:e6:dd:e2:
3d:fb:5d:39:b2:21:9c:35:ea:33:c4:73:c9:64:cd:f9:87:1d:
4a:61:c4:e6:da:5b:d6:dd:d5:3e:86:4a:fd:29:95:c2:61:22:
38:57:c6:97:74:c8:37:53:5d:0c:1b:8b:be:38:d1:55:c6:70:
14:c1:f2:2d:b0:a6:71:31:fc:a0:52:d3:56:d8:4a:99:ab:83:
26:dd:2c:cb:41:09:6b:85:1d:52:4d:0a:ab:af:3d:16:98:7d:
43:2c:58:ae:5a:96:e1:a8:4c:c5:f2:e6:cc:9a:71:fa:46:5a:
e5:70:44:1e:ac:7a:0a:9d:81:05:09:ea:7c:8e:45:0e:89:63:
d9:3c:10:33:4f:10:db:26:e8:2d:5b:75:6e:fb:22:eb:57:e8:
bb:3f:e2:33:0e:6b:a1:20:b0:7c:60:90:07:b0:5a:75:54:f2:
b5:a2:80:cd:2c:e0:08:7c:0f:22:dc:56:de:4a:18:ce:2b:62:
fa:eb:5a:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:13:27 2025 by rpki-client